Metrics-driven DevSecOps

Wissam Mallouli; Ana Cavalli; Alessandra Bagnato; Edgardo Montes de Oca

doi:10.5220/0009889602280233

Metrics-driven DevSecOps

Wissam Mallouli, Ana Cavalli, Alessandra Bagnato, Edgardo Montes de Oca

2020

Abstract

Due to the modern iterative development practices and new automated software engineering tools and methods brought by the DevOps agile method, the traditional metrics and evaluation methods are not enough to ensure software security. Besides, the recent years have seen probably the most continuous and extreme software security attacks ever recorded against organizations in an assortment of enterprises. Security is presently a vast range, critical for business achievement. The existing metrics must be redefined, and new security metrics should be determined based on multiple measures to increase the reliability of the values. Due to the short cycles of iterative processes in DevOps method, the feedback must come quickly, so the measurement should be automated and continuous. Due to the massive amount of information, the results must be visualized at a suitable level of abstraction, which may be different for the various stakeholders. In this paper, we propose a unique Metric-driven approach to help improve the software engineering processes by increasing the quality, adaptability and security of software and decreasing costs and time-to-market.

Download

Paper Citation

in Harvard Style

Mallouli W., Cavalli A., Bagnato A. and Montes de Oca E. (2020). Metrics-driven DevSecOps.In Proceedings of the 15th International Conference on Software Technologies - Volume 1: ICSOFT, ISBN 978-989-758-443-5, pages 228-233. DOI: 10.5220/0009889602280233

in Bibtex Style

@conference{icsoft20,
author={Wissam Mallouli and Ana Cavalli and Alessandra Bagnato and Edgardo Montes de Oca},
title={Metrics-driven DevSecOps},
booktitle={Proceedings of the 15th International Conference on Software Technologies - Volume 1: ICSOFT,},
year={2020},
pages={228-233},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0009889602280233},
isbn={978-989-758-443-5},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 15th International Conference on Software Technologies - Volume 1: ICSOFT,
TI - Metrics-driven DevSecOps
SN - 978-989-758-443-5
AU - Mallouli W.
AU - Cavalli A.
AU - Bagnato A.
AU - Montes de Oca E.
PY - 2020
SP - 228
EP - 233
DO - 10.5220/0009889602280233